US2019207906A1PendingUtilityA1
Computer Security System and Method Based on User-Intended Final Destination
Est. expiryMay 12, 2034(~7.8 yrs left)· nominal 20-yr term from priority
Inventors:Michael C. Wood
H04L 63/101H04L 67/02H04L 63/168H04L 67/12H04L 63/0227H04L 45/66H04L 63/0236H04L 63/1408H04L 61/1511H04L 61/2038H04L 61/2069H04L 61/6022H04L 2101/622H04L 61/5038H04L 61/4511H04L 61/5069
61
PatentIndex Score
0
Cited by
0
References
0
Claims
Abstract
A system and method is described for protecting applications against malicious URL links by identifying a final destination. The system and method also includes enabling a user process to directly connect to the final destination, bypassing the original URL altogether; thereby bypassing the hacker's ability to use that URL to programmatically send the application to a malicious site.
Claims
exact text as granted — not AI-modifiedWhat is claimed is:
1 . A system for protecting applications and computing devices against malicious URL links, the system comprising:
a computing device comprising a processor and an associated memory; a software application running on the computing device and comprising a link; a communications network; a final destination determination process; and a user process for connecting the software application to a remote destination; wherein the computing device is communicatively connected to the communications network; wherein the final destination determination process identifies a final destination of the link; wherein the final destination is conveyed to a user.
2 . The system of claim 1 , wherein the final destination is not an original URL of the link.
3 . The system of claim 1 , wherein the user process connects directly to the final destination if the user selects a connect option.
4 . The system of claim 1 , wherein the final destination determination process and the user process are merged together into a single process.
5 . The system of claim 1 , wherein the computing device or a device that is connected to the computing device provides an audible or visual representation of the final destination, wherein the representation comprises at least one of a hyperlink, a URL, a domain name, or a name of an owner of the final destination.
6 . The system of claim 1 , wherein the user process bypasses connections to all other remote destinations in a path associated with the link when the user process directly connects to the final destination.
7 . The system of claim 1 , wherein the computing device provides at least one user-selectable connect option; and wherein upon selection of the at least one user-selectable connect option, the computing device connects directly to the final destination without following a path associated with the link.
8 . The system of claim 1 , wherein the computing device provides at least one user-selectable connect option; and wherein upon selection of the at least one user-selectable connect option, the computing device connects to at least one site of a path associated with the link, and the computing device disables programmatic capabilities until a connection is made to the final destination.
9 . A system for protecting applications and computing devices against malicious URL links, the system comprising:
a computing device comprising a processor and an associated memory; a software application running on the computing device and comprising a link; a display communicatively connected to the computing device; a user input device communicatively connected to the computing device; a communications network; a final destination determination process; and a user process for connecting the software application to a remote destination via the communications network; wherein the computing device is communicatively connected to the communications network; wherein the final destination determination process identifies a final destination; wherein the final destination is conveyed to a user by showing the final destination of the link on the display upon selection of the link; wherein a user makes a user selection using the user input device to produce an instruction to connect to the final destination or declines to connect to the final destination based on the final destination shown by the display; wherein the computing device allows or disallows a connection to the final destination based on the instruction.
10 . The system of claim 9 , wherein the final destination is not the original URL of the link.
11 . The system of claim 9 , wherein the user process is installed on the computing device and connects directly to the final destination if the user selects a connect option.
12 . The system of claim 9 , wherein the display shows a connect option or a block option, wherein the user process connects to the final destination when the connect option is selected and blocks connection to the final destination if the block option is selected.
13 . The system of claim 9 , wherein the display provides a representation of the final destination, wherein the representation comprises at least one of a hyperlink, a URL, a domain name, or a name of an owner of the final destination.
14 . The system of claim 9 , wherein the user process bypasses connections to all other remote destinations in a path associated with the link when the user process directly connects to the final destination.
15 . The system of claim 9 , wherein the computing device provides at least one user-selectable connect option; and wherein upon selection of the at least one user-selectable connect option, the computing device connects directly to the final destination without following a path associated with the link.
16 . The system of claim 9 , wherein the computing device provides at least one user-selectable connect option; and wherein upon selection of the at least one user-selectable connect option, the computing device connects to at least one site of a path associated with the link, and the computing device disables programmatic capabilities until a connection is made to the final destination.
17 . A method for protecting applications and computing devices against malicious URL links, the method comprising the steps of:
(a) protecting a software application and a computing device against malicious URL links using a system comprising:
(i) the computing device, which comprises a processor and an associated memory;
(ii) the software application, which runs on the computing device and comprises a link;
(iii) a communications network;
(iv) a final destination determination process; and
(v) a user process for connecting the software application to a remote destination;
wherein the computing device is communicatively connected to the communications network;
(b) using the final destination determination process, identifying a final destination of the link; and (c) conveying the final destination to a user.
18 . The method of claim 17 , wherein the computing device provides at least one user-selectable connect option; and wherein step (c) of the method further comprises the step of:
(d) upon selection of the at least one user-selectable connect option, connecting the computing device directly to the final destination without following a path associated with the link.
19 . The method of claim 17 , wherein the computing device provides at least one user-selectable connect option; and wherein step (c) of the method further comprises the step of:
(e) upon selection of the at least one user-selectable connect option, connecting the computing device to at least one site of a path associated with the link; wherein the computing device disables programmatic capabilities until a connection is made to the final destination.Cited by (0)
No later patents cite this yet.
References (0)
No backward citations on record.